blackmoon | ff8b594c046f57c567fc1e28bac06a221a0c4b0d9e23d2667289dc04fb852e15 | Triage

Submit
Reports

Overview

overview

Static

static

7

00d6fab586...18.exe

windows7-x64

00d6fab586...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

00d6fab586d055f0a3e2f2321131498b_JaffaCakes118
Size

44KB
Sample

240930-mes96svalb
MD5

00d6fab586d055f0a3e2f2321131498b
SHA1

623ae0b0d9cea4c3452d15cc77d6dad519c71970
SHA256

ff8b594c046f57c567fc1e28bac06a221a0c4b0d9e23d2667289dc04fb852e15
SHA512

203a03471f5061561d8533be55c7f4672b08e8b6595e3f2ecd2aad433c2ea58b14d241bd8b1482202f841a0de2e53e4e7179d7ad07ca5abe13fcb7962f2349eb
SSDEEP

768:m077Lq7O7Ew0MQd+kuhBlwoselYsXCsdxI6lbWYGPxLbPrjv8888j8888888888H:mQmK7Z0MVTwilYsH6QWYw/v8888j888v

Score

10^/10

blackmoon aspackv2 banker discovery trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

00d6fab586d055f0a3e2f2321131498b_JaffaCakes118.exe

Resource

win7-20240729-en

blackmoon banker discovery trojan

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

00d6fab586d055f0a3e2f2321131498b_JaffaCakes118.exe

Resource

win10v2004-20240802-en

blackmoon banker discovery trojan

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  00d6fab586d055f0a3e2f2321131498b_JaffaCakes118
- Size
  
  44KB
- MD5
  
  00d6fab586d055f0a3e2f2321131498b
- SHA1
  
  623ae0b0d9cea4c3452d15cc77d6dad519c71970
- SHA256
  
  ff8b594c046f57c567fc1e28bac06a221a0c4b0d9e23d2667289dc04fb852e15
- SHA512
  
  203a03471f5061561d8533be55c7f4672b08e8b6595e3f2ecd2aad433c2ea58b14d241bd8b1482202f841a0de2e53e4e7179d7ad07ca5abe13fcb7962f2349eb
- SSDEEP
  
  768:m077Lq7O7Ew0MQd+kuhBlwoselYsXCsdxI6lbWYGPxLbPrjv8888j8888888888H:mQmK7Z0MVTwilYsH6QWYw/v8888j888v
Score

10^/10

blackmoon banker discovery trojan
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojan

behavioral2

blackmoonbankerdiscoverytrojan

© 2018-2025

Terms | Privacy